pegasus/anope
1
0
Fork 0
mirror of https://github.com/anope/anope.git synced 2026-06-26 07:36:39 +02:00
Code Activity

Add support for local password comparison in sql_authentication.

Browse Source
This commit is contained in:
Sadie Powell
2025-04-11 12:05:18 +01:00
parent 4916e1dbfc
commit 452e62c050
2 changed files with 56 additions and 4 deletions
Download Patch File Download Diff File Expand all files Collapse all files
modules/sql_authentication.cpp
+39 -4
View File
@@ -7,16 +7,29 @@
*/
#include "module.h"
#include "modules/encryption.h"
#include "modules/sql.h"
static Module *me;
namespace
{
Module *me;
ServiceReference<Encryption::Provider> encryption;
Anope::string password_hash, password_field;
}
class SQLAuthenticationResult final
: public SQL::Interface
{
Reference<User> user;
IdentifyRequest *req;
void OnFail(const Anope::string &reason)
{
Log(LOG_DEBUG) << "sql_authentication: Unsuccessful authentication for " << req->GetAccount() << ": " << reason;
delete this;
return;
}
public:
SQLAuthenticationResult(User *u, IdentifyRequest *r) : SQL::Interface(me), user(u), req(r)
{
@@ -31,10 +44,25 @@ public:
void OnResult(const SQL::Result &r) override
{
if (r.Rows() == 0)
return OnFail("no rows");
if (!password_hash.empty())
{
Log(LOG_DEBUG) << "sql_authentication: Unsuccessful authentication for " << req->GetAccount();
delete this;
return;
if (!encryption)
return OnFail("encryption provider not loaded");
auto success = false;
for (auto i = 0; i < r.Rows(); ++i)
{
if (encryption->Compare(r.Get(i, password_field), req->GetPassword()))
{
success = true;
break;
}
}
if (!success)
return OnFail("no matching passwords");
}
Log(LOG_DEBUG) << "sql_authentication: Successful authentication for " << req->GetAccount();
@@ -99,6 +127,13 @@ public:
this->disable_email_reason = config.Get<Anope::string>("disable_email_reason");
this->SQL = ServiceReference<SQL::Provider>("SQL::Provider", this->engine);
password_hash = config.Get<const Anope::string>("password_hash");
if (!password_hash.empty())
{
password_field = config.Get<const Anope::string>("password_field", "password");
encryption = ServiceReference<Encryption::Provider>("Encryption::Provider", password_hash);
}
}
EventReturn OnPreCommand(CommandSource &source, Command *command, std::vector<Anope::string> &params) override